Security News > 2023 > May > CISA warns govt agencies of recently patched Barracuda zero-day
CISA warned of a recently patched zero-day vulnerability exploited last week to hack into Barracuda Email Security Gateway appliances.
Federal Civilian Executive Branch Agencies agencies must patch or mitigate the vulnerability as ordered by the BOD 22-01 binding operational directive.
This is no longer needed since Barracuda has already patched all vulnerable devices by applying two security patches over the weekend.
Federal agencies will also have to take CISA's alert as a warning to check their networks for signs of intrusions.
Even though only U.S. federal agencies are required to fix the bugs added to CISA's Known Exploited Vulnerabilities list, private companies are also strongly recommended to prioritize patching them.
On Monday, federal agencies were warned to secure iPhones and Macs in their environment against three iOS and macOS zero-days, one reported by Google TAG and Amnesty International security researchers and likely exploited in state-backed spyware attacks.